Overview

overview

3

Static

static

3

68367ff499...a6.pdf

windows7-x64

1

68367ff499...a6.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/01/2024, 17:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    68367ff499c6592212efd9536f9816a6.pdf

  • Size

    77KB

  • MD5

    68367ff499c6592212efd9536f9816a6

  • SHA1

    b4f17051bc9ff02b975cbd0f88d1046c250247ad

  • SHA256

    4038e78643431702d641a2d4e8edb78b13e20f50dc7d6a3e1bb9ae3d650ef997

  • SHA512

    21fb96d9355e990f8b08b1099e791505299ee278d3986b6e1e2187d2813d492563b62f1d618018f30d65d84b5ea2868a283470bca87f34359239fb56d9525149

  • SSDEEP

    1536:yjPoqhp/DPEq+LjkqwOBAVDyjfAM675N01/ULuWrIHKk1uDCW8pO70Ex:SP3IGqWDyjfg7ryW1fZDp73

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\68367ff499c6592212efd9536f9816a6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2356

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2c8789bd34cc960b75b0a1dfc525d759

    SHA1

    38ea07cd7d8c185cdb9569f157059c512621d0a9

    SHA256

    545d41cd12700d2b8d45a5f1f656d93d62912dc919373975a14eddc4380be4cf

    SHA512

    43f8f11bfea797d5b1884e25496c06cb04321a0e250570ade853352ed78c2e86b36c29c91b3d88032d2bd9d0eca757cdf4de4621daf1dd51680da3538490b1b8

    Download Submit